| TIP: Click on subject to list as thread! | ANSI |
| echo: | |
|---|---|
| to: | |
| from: | |
| date: | |
| subject: | Security Advisory on RAR |
Upgrade to 5.70 ASAP https://www.ghacks.net/2019/02/21/winrar-has-a-critical-security-bug-here-is-the-fix/ WinRAR has a critical security bug: here is the fix by Martin Brinkmann on February 21, 2019 in Security - 33 comments WinRAR is a very popular software to create and extract archives on Windows and other supported operating systems. Part of its popularity comes from its support for different types of packing formats, another that the software's trial version never expires. A bug was discovered recently that affects all versions of WinRAR prior to 5.70. The bug, a remote code execution vulnerability, affects all WinRAR versions and thus all 500 million users that use the application. Security researchers discovered a flaw in a library that WinRAR uses to extract files from archives packed with the ACE format. Attackers can exploit the vulnerability by pushing specially prepared archives to user systems. The bug can be abused to extract the files into any folder on the system instead of the folder selected by the user or the default folder for extracted files. --- Platinum Xpress/Win/WINServer v7.0* Origin: Inland Utopia BBS * Ontario, CA * iutopia.dtdns.net (1:218/109) SEEN-BY: 10/0 1 102/401 103/705 154/10 201/120 203/0 214/22 218/0 1 109 210 SEEN-BY: 218/215 401 501 520 600 640 700 720 802 221/0 1 6 360 229/426 230/0 SEEN-BY: 240/5832 261/38 280/464 5003 320/219 396/45 633/267 280 640/461 1321 SEEN-BY: 640/1384 712/620 848 886 770/1 2452/250 @PATH: 218/109 700 103/705 280/464 221/1 640/1384 712/848 633/267 |
|
| SOURCE: echomail via fidonet.ozzmosis.com | |
Email questions or comments to sysop@ipingthereforeiam.com
All parts of this website painstakingly hand-crafted in the U.S.A.!
IPTIA BBS/MUD/Terminal/Game Server List, © 2025 IPTIA Consulting™.